Malware.AI.3550283959 information

The Malware.AI.3550283959 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Malware.AI.3550283959 virus can do?

Dynamic (imported) function loading detected
CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Malware.AI.3550283959?


File Info:
name: 7F94FEFD93E69528ED98.mlw
path: /opt/CAPEv2/storage/binaries/8762d89468a1026739c0f0c83cbb12564494eae91b7a25295152187f8353af15
crc32: 5F978635
md5: 7f94fefd93e69528ed985a67a25665ed
sha1: bd89f67ae37481b492a3944775d000d003060347
sha256: 8762d89468a1026739c0f0c83cbb12564494eae91b7a25295152187f8353af15
sha512: c2edbea36cc8a82cc7a76fc55eaa69cb5946030a37273e57cb148ef9cf9a621c66b588c638d8b580b8c750620e0b0d4f83b5b1f02a41f71d28ea2b8c213592e4
ssdeep: 192:BQTY14UhJ5ULHPBaIo1AgLgfWTfJwDjss:Bx4Y5kHPBap81
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T190E1D610F7F84635D9BB0F31ADB693800AB6F7409D26CB9DA8D5500B5E327600663F32
sha3_384: 26cebbf63e94cd377b9e9368c9a56a179666a6bc8ac4a280dd03f3bfd9d98d8e742c994d1d970409c4b6afe5524e59e2
ep_bytes: ff250020400000000000000000000000
timestamp: 2088-06-23 02:24:51

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: WindowsDefence(x64)
FileVersion: 1.0.0.0
InternalName: WindowsDefence(x64).exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: WindowsDefence(x64).exe
ProductName: WindowsDefence(x64)
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Malware.AI.3550283959 also known as:

MicroWorld-eScan	Trojan.GenericKD.38854140
FireEye	Trojan.GenericKD.38854140
McAfee	RDN/Generic.dx
Cylance	Unsafe
Sangfor	Trojan.MSIL.Agent.gen
BitDefenderTheta	Gen:NN.ZemsilF.34212.am0@aCRpgtb
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/CoinMiner.BPX
TrendMicro-HouseCall	TROJ_GEN.R002C0PB422
Paloalto	generic.ml
Kaspersky	HEUR:Trojan.MSIL.Agent.gen
BitDefender	Trojan.GenericKD.38854140
Avast	Win32:CoinminerX-gen [Trj]
Tencent	Msil.Trojan.Agent.Alsu
Ad-Aware	Trojan.GenericKD.38854140
Emsisoft	Trojan.GenericKD.38854140 (B)
TrendMicro	TROJ_GEN.R002C0PB422
McAfee-GW-Edition	RDN/Generic.dx
Sophos	Mal/Generic-S
Ikarus	Trojan.MSIL.CoinMiner
Avira	HEUR/AGEN.1236230
Gridinsoft	Ransom.Win32.Miner.sa
Microsoft	Backdoor:Win32/Bladabindi!ml
GData	Trojan.GenericKD.38854140
Cynet	Malicious (score: 99)
AhnLab-V3	Trojan/Win.Generic.C4954528
VBA32	TScope.Trojan.MSIL
ALYac	Trojan.GenericKD.38854140
MAX	malware (ai score=86)
Malwarebytes	Malware.AI.3550283959
APEX	Malicious
Rising	Trojan.Generic/MSIL@AI.97 (RDM.MSIL:fLVi+TEV8rxL07iRaiJg2A)
SentinelOne	Static AI – Malicious PE
Fortinet	Adware/Miner
AVG	Win32:CoinminerX-gen [Trj]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_90% (W)

How to remove Malware.AI.3550283959?

Malware.AI.3550283959 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X